I just ordered a Pixel 3a and I was gone for a while from the world of Google phones (since Nexus 4).
I know Magisk hides any trace of root and unlocked bootloader, but is there any disadvantages unique to Pixel devices when rooting, like disabled features or is hiding good enough that there won't be any difference? Just to be sure
Artim_96 said:
I just ordered a Pixel 3a and I was gone for a while from the world of Google phones (since Nexus 4).
I know Magisk hides any trace of root and unlocked bootloader, but is there any disadvantages when rooting, like disabled features or is hiding good enough that there won't be any difference? Just to be sure
Click to expand...
Click to collapse
Nothing as far as i know.
Unstroofy said:
Nothing as far as i know.
Click to expand...
Click to collapse
That sounds great. Wasn't sure if they might have done something through the Titan M or else
Rooting means unlocking your bootloader. This makes your phone at greater risk of being compromised - especially if someone has physical access to your phone (ie you lost it and someone finds it). Therefore you don't want to leave your bootloader unlocked if you have any sort of sensitive, illegal, or secret information on your phone. That's the #1 issue you have to live with. Of course for 99% of the population, there isn't anything really sensitive on their phones.
Google Pay can be hard to get working when rooted. There are ways to make it work, but it's always a cat and mouse game with Google and it may not always work in the future if Google changes something until the developers can catch up. If you can't live without Google Pay, rooting may not be the best choice for you.
There are other apps that can be temperamental when rooted - usually finance apps and some games (because they don't want players cheating). However, the Magisk hide functionality usually works with most of these apps now.
For me, the added functionality that being rooted brings (via modules and apps) is far better than the potential issues.
sic0048 said:
Rooting means unlocking your bootloader. This makes your phone at greater risk of being compromised - especially if someone has physical access to your phone (ie you lost it and someone finds it). Therefore you don't want to leave your bootloader unlocked if you have any sort of sensitive, illegal, or secret information on your phone. That's the #1 issue you have to live with. Of course for 99% of the population, there isn't anything really sensitive on their phones.
Google Pay can be hard to get working when rooted. There are ways to make it work, but it's always a cat and mouse game with Google and it may not always work in the future if Google changes something until the developers can catch up. If you can't live without Google Pay, rooting may not be the best choice for you.
There are other apps that can be temperamental when rooted - usually finance apps and some games (because they don't want players cheating). However, the Magisk hide functionality usually works with most of these apps now.
For me, the added functionality that being rooted brings (via modules and apps) is far better than the potential issues.
Click to expand...
Click to collapse
Tl;dr: nothing new. And never had a problem with any apps. Magisk Hide is working well enough, deleting apps data always works as last resort. And on custom ROMs just use MagiskHide Props Config. And if you are concerned about your data, just use the lockscreen passport as bootup protection. Then it's simply impossible to get to the data through that "insecurity", no matter what you do. And since fingerprint readers a more complex password isn't a problem.
Artim_96 said:
Tl;dr: nothing new. And never had a problem with any apps. Magisk Hide is working well enough, deleting apps data always works as last resort. And on custom ROMs just use MagiskHide Props Config. And if you are concerned about your data, just use the lockscreen passport as bootup protection. Then it's simply impossible to get to the data through that "insecurity", no matter what you do. And since fingerprint readers a more complex password isn't a problem.
Click to expand...
Click to collapse
I'm not sure exactly what you mean by lock screen passport. Can you share some more details?
The insecurity comes from the fact that a person that has physical access to your phone can simply turn the phone off and then start it and hold the power and volume up buttons. This will boot the device into the bootloader. Because the bootloader is unlocked, it allows that person the ability to flash anything and gives that person access to anything they want. That super secure lockscreen password or fingerprint won't help keep them out and does nothing but give users a false sense of security.
When the FBI paid a 1 million dollar bounty to someone to access an iPhone, they were paying someone to get around the bootloader. If you unlock your bootloader, you give this access right from the beginning - for free, and without any effort required.
I'm not trying to be argumentative either. You asked what the drawbacks to rooting were and I was simply trying to give a thorough answer. It's up to the individual user to decide if the the positives of unlocking the bootloader and rooting outweigh the negatives. If you look at my signature, you can see what side of the fence I fall on.
sic0048 said:
I'm not sure exactly what you mean by lock screen passport. Can you share some more details?
The insecurity comes from the fact that a person that has physical access to your phone can simply turn the phone off and then start it and hold the power and volume up buttons. This will boot the device into the bootloader. Because the bootloader is unlocked, it allows that person the ability to flash anything they want. That super secure lockscreen password or fingerprint won't help keep them out.
Again, I'm not familiar with this lockscreen passport you mention, so perhaps there is a way to secure the phone that I am not aware of.
I'm not trying to be argumentative either. You asked what the drawbacks to rooting were and I am simply trying to give an thorough answer. It's up to the individual user to decide if the the positives or rooting and unlocking the bootloader outweigh the negatives. If you look at my signature, you can see what side of the fence I fall on.
Click to expand...
Click to collapse
Was a typo,I meant lockscreen password. Android should ask you, if you set up a lock method other than Swipe to unlock, if you want to be asked for it on bootup.
So no matter what you are able to flash through an unlocked bootloader, /data and with it anything that could be relevant stays encrypted until you enter the lockscreen pin/pattern/password, no matter if you do this on the screen that will interrupt bootup after a few seconds or in TWRP. So it doesn't matter what you could come up flashing, as long as you don't find a way to extract the encryption key from the secure storage either in Titan M or any ARM processor, there is no way to get your hands on user data. The only thing you can do is simply wipe /data. Then you can start up new, but the users data will be gone.
And no, I never asked for disadvantages of root itself since there are little to none, I just asked for Pixel unique stuff since Google always adds stuff that other OEMs won't use for years to come.
Artim_96 said:
And no, I never asked for disadvantages of root itself since there are little to none, I just asked for Pixel unique stuff since Google always adds stuff that other OEMs won't use for years to come.
Click to expand...
Click to collapse
I misunderstood your initial post then, but the title of the thread says, "Disadvantages of rooting?"
sic0048 said:
I misunderstood your initial post then, but the title of the thread says, "Disadvantages of rooting?"
Click to expand...
Click to collapse
Fixed that. Hope the text is more clear now.
But could you reproduce what I explained? Because I would be very surprised if that was unique to Motorola and not AOSP
Related
since i have installed APM'advanced power menu' on my Xgo 4.1.2, i realized what would happen if my device get lost or stolen with pattern unlock on or moreever with anti-theft function enabled by the app?then this made me create this toppic thinking would become a good idea.
I asked this from the dev but also your ideas would be welcome...
(which one would you preffer ?
having :
-pattern/pin code set on ,then accept this risk that may your device get suddenly re-flashed or thrown away or atleast shutdown(out of power) for long time by the theft?
Or
-nothing on (or just swipe to unlock) and let the theft to easily use your phone then may getting chance to track him/her by any third party pre-installed device-tracker app?)
i myself have choosed to set swipe ,plus of its fascilities its more reasonable for me.
So how about you?
Excuse my bad English
ahmad990 said:
since i have installed APM'advanced power menu' on my Xgo 4.1.2, i realized what would happen if my device get lost or stolen with pattern unlock on or moreever with anti-theft function enabled by the app?then this made me create this toppic thinking would become a good idea.
I asked this from the dev but also your ideas would be welcome...
(which one would you preffer ?
having :
-pattern/pin code set on ,then accept this risk that may your device get suddenly re-flashed or thrown away or atleast shutdown(out of power) for long time by the theft?
Or
-nothing on (or just swipe to unlock) and let the theft to easily use your phone then may getting chance to track him/her by any third party pre-installed device-tracker app?)
i myself have choosed to set swipe ,plus of its fascilities its more reasonable for me.
So how about you?
Excuse my bad English
Click to expand...
Click to collapse
I think it depends on what kind of data you store on your phone. If there is data from my company or private photos and such I want my device encrypted and locked up, because I don't want that persons other than me are able to get this data. But that is a personal decision. Also I think as a thief I would check the phone and if there is no interesting data I would factory reset it, if there is a screen lock or not.
I've just encrypted my Nexus 5 under Android 5.0 and I was hoping I could set a decryption PIN just for the startup boot process, and not every time I unlock my phone. I haven't managed to find a way to do this, though: it's possible to enable a startup PIN if you enable the lock screen PIN, but I don't see a way to simply enable a startup PIN.
My goal is simple: to secure my phone when it's powered off, while making it comfortable to use when it's powered on. Can this be done?
Thank you!
Not by standard. Not sure what affects using apps that turn the secure lock on and off will have. You can test them.
rootSU said:
Not by standard. Not sure what affects using apps that turn the secure lock on and off will have. You can test them.
Click to expand...
Click to collapse
OK, I will, thank you for your response.
jpabloae said:
My goal is simple: to secure my phone when it's powered off
Click to expand...
Click to collapse
When its off its already secure since no electrons flow through it...
jpabloae said:
I've just encrypted my Nexus 5 under Android 5.0 and I was hoping I could set a decryption PIN just for the startup boot process, and not every time I unlock my phone. I haven't managed to find a way to do this, though: it's possible to enable a startup PIN if you enable the lock screen PIN, but I don't see a way to simply enable a startup PIN.
My goal is simple: to secure my phone when it's powered off, while making it comfortable to use when it's powered on. Can this be done?
Thank you!
Click to expand...
Click to collapse
i'd say you want your phone to boot if you loose it (so you can track it), don't you think?
kenshin33 said:
i'd say you want your phone to boot if you loose it (so you can track it), don't you think?
Click to expand...
Click to collapse
That's reasonable in most cases. But there are situations and circumstances in which the data privacy has a higher priority than the ability to track the phone. Anyway the question can be considered independently from its motivations: can I separate the encryption key from the lock screen key? According to issue 29468 and this discussion, it seems it's still not possible.
jpabloae said:
That's reasonable in most cases. But there are situations and circumstances in which the data privacy has a higher priority than the ability to track the phone. Anyway the question can be considered independently from its motivations: can I separate the encryption key from the lock screen key? According to issue 29468 and this discussion, it seems it's still not possible.
Click to expand...
Click to collapse
according to this:
http://source.android.com/devices/tech/encryption/
out of the box, no because the lock screen password/PIN/ is used to encrypt the actual encryption key (randomly generated)
thank you very much b/c indirectly you answered the question I had (the reason I was browsing this thread), namely the boot password thinggy (as I said I'd like the phone to boot, baring an exploit, it's well protected: bootloader relocked, long password, impossible to flash anything without wiping - I sign my builds cm-12 with my own keys, and I crippled the recovery to allow only signed zips-, and no adb -even in recovery- connection outside my own computer, I installed cerberus in the system partition without a backup script, the only way to get rid of it is to explicitly format the system partition, and above all I don't trust the phone ).
that said, it should be possible may be to fiddle with vold's sources to make it so (separate passwords, it shouldn't be too hard ) the only problem in the absence of an "official" solution (be it in AOSP or the flavor du jour Android) the user is backed into a corner : build his own ROM from sources.
My last phone you couldn't turn off, reboot, or change network settings while the phone is locked. This is a very useful feature as if your phone "walks away" tracking cannot be disabled so as long as your battery is not dead you have full tracking abilities.
I did notice this feature seems to work with GPS. If you try to toggle, it will prompt for a password but that alone isn't enough to track it. I need to lock mobile data as well. I could probly just remove it from my notification tray but that is an inconvenience as I do use that toggle.
Any Ideas?
Username5.2 said:
My last phone you couldn't turn off, reboot, or change network settings while the phone is locked. This is a very useful feature as if your phone "walks away" tracking cannot be disabled so as long as your battery is not dead you have full tracking abilities.
I did notice this feature seems to work with GPS. If you try to toggle, it will prompt for a password but that alone isn't enough to track it. I need to lock mobile data as well. I could probly just remove it from my notification tray but that is an inconvenience as I do use that toggle.
Any Ideas?
Click to expand...
Click to collapse
Not all devices have added those as all it takes to beat them is removing the sim card and all android devices will reboot if the power button is held for an extended time.
Well I thought about the reboot and it will boot back up so I didn't see that as a problem. Didn't think about the sim card though. Well lets just hope if someone gets a hold of my phone they won't think about it either. Anything I can do to make it harder is still worth it.
Oh well. If someone has a way to make this happen please share. I don't even know if its something I can make happen with an app or by editing anything in the android system. I will keep looking in the mean time.
Username5.2 said:
Well I thought about the reboot and it will boot back up so I didn't see that as a problem. Didn't think about the sim card though. Well lets just hope if someone gets a hold of my phone they won't think about it either. Anything I can do to make it harder is still worth it.
Oh well. If someone has a way to make this happen please share. I don't even know if its something I can make happen with an app or by editing anything in the android system. I will keep looking in the mean time.
Click to expand...
Click to collapse
I can tell you that there are 3 steps when a device is stolen and the first one is remove the battery and the second is remove the sim card so no one can call it. the 3rd step is resetting it.
You will need a custom rom to get those options.
If you care about security too much, I would say never unlock your bootloader.
Its so easy to keep pressing the power button and reboot to bootloader and flash stuff to access your memory (With unlocked bootloader of course)
But with locked BL, they have to erase the storage in order to unlock it and do stuff. So, if security is a big concern to you, its good to always keep it locked.
I tried to enable Smart Lock and have run into a couple issues which no amount of searching gave way to results. I'm on a stock unrooted device.
Is there a way to make this feature work based on location? Seems to not work in locations where I set it to. I tried uninstalling and reinstalling google play services to no avail. Rebooting does nothing to fix.
Sometimes when I try to view the Smart Lock settings, after entering the pin/pattern nothing appears in the menu at all. Very buggy. Does this feature just plain suck or something? I'd rather not use face unlock, but this might force me to.
SOCOM-HERO said:
I tried to enable Smart Lock and have run into a couple issues which no amount of searching gave way to results. I'm on a stock unrooted device.
Is there a way to make this feature work based on location? Seems to not work in locations where I set it to. I tried uninstalling and reinstalling google play services to no avail. Rebooting does nothing to fix.
Sometimes when I try to view the Smart Lock settings, after entering the pin/pattern nothing appears in the menu at all. Very buggy. Does this feature just plain suck or something? I'd rather not use face unlock, but this might force me to.
Click to expand...
Click to collapse
I have issues like this. Supposedly, smart Lock not working by location is a bug from Google not op. It is very hit or miss
thejase said:
I have issues like this. Supposedly, smart Lock not working by location is a bug from Google not op. It is very hit or miss
Click to expand...
Click to collapse
I wonder if this is an Oreo issue and if it will be fixed in P. Very annoying. I may just drop security all together. I didn't have it on my last phone for over 3 years. I like the idea of it, but not being able to unlock the phone while driving and at "trusted" places is pretty useless.
SOCOM-HERO said:
I wonder if this is an Oreo issue and if it will be fixed in P. Very annoying. I may just drop security all together. I didn't have it on my last phone for over 3 years. I like the idea of it, but not being able to unlock the phone while driving and at "trusted" places is pretty useless.
Click to expand...
Click to collapse
Agreed
And the fingerprint unlock not fast enough for you. I do it in one motion. Pick up phone and unlock just like that
nujackk said:
And the fingerprint unlock not fast enough for you. I do it in one motion. Pick up phone and unlock just like that
Click to expand...
Click to collapse
It has nothing to do with speed and everything to do with convenience. Let's not forget that GOOGLE is the one who added the feature. Oreo has been out, in general, for a while. It should just plain work. If I'm at home, why should there be a lock on my device? When I'm out however, it just makes sense to be locked down. Adding a feature that actually doesn't work or works some of the time, is something you'd think they'd have caught during Oreo testing at Google; particularly, as it's an issue with Android, not manufacturers. Even my wife's Galaxy S9+ has this issue.
@thejase
I get that but I don't use it as I'm the opposite phone should be locked when not in my hand never know what will happen,who may come over to visit I have lots of nieces and nephews. One who grabs any phone he can.
But I meant it to be fast enough that it's as if it's not locked.
If you want to stick with
Smart lock have you tried use the voice feature it may work.
Also look into Tasker I seem to remember someone using it to unlock the device based on location. I use it to turn on and off my Wi-Fi based on location. Auto start my music when in my truck.
thejase said:
It has nothing to do with speed and everything to do with convenience. Let's not forget that GOOGLE is the one who added the feature. Oreo has been out, in general, for a while. It should just plain work. If I'm at home, why should there be a lock on my device? When I'm out however, it just makes sense to be locked down. Adding a feature that actually doesn't work or works some of the time, is something you'd think they'd have caught during Oreo testing at Google; particularly, as it's an issue with Android, not manufacturers. Even my wife's Galaxy S9+ has this issue.
Click to expand...
Click to collapse
Seems to be working better today. Disabled the "smart lock" in trust agents setting under fingerprint and security, then booted to the stock recovery and wiped the cache only. (I'm not rooted yet, but TWRP would work for this as well). Seems to have led to a fix, but it could be temporary. As for usefulness of smart lock, I am not worried about others in my own home taking my device and combing through it for all I care. If you have kids or are concerned about content on your phone being messed with, just don't use the feature. For a lot of people, it is a useful feature to have.
This issue has returned and requires a cache wipe almost every day. Beyond annoyed. I am considering deleting my fingerprints or any security. Pretty stupid feature that makes the phone require a password every single time I want to use it, when this feature could have alleviated that in so many places where I know my phone is safe (home, work, car).
Oneplus 6 - Phone unlocks with smart lock off on Android P
I don't use smart lock option in my phone but after upgrading to Android P, even when the smart lock option is off, my phone screen opens when picked immediately as it is supposed to show the screen is locked. Any suggestions please
Hello;
After looking for hours about this I'm very angry because of the stupidity of Google. Here I go:
I have configured fingerprint to unlock my phone because I sometimes can't or it's very uncomfortable for me to unlock my phone with a password / PIN / Pattern because using with one hand and I need to unlock as fast as possible all the time.
Now it comes the stupidest thing I've ever seen in my life: no matter what, the phone will ask me to enter whatever I have configured for security, rendering my fingerprint totally useless. This is completely nonsense because it's not configurable by the user. The correct way of doing this is to enable an option for the user to choose: "Additionally ask every 72 hours for the password to provide extra security". Just a checkbox that can be enabled or disabled, because Google should think about the user. This security crazy paranoia is making devices less secure, because people who don't want to enter their password when they have configured fingerprint choose to disable security completely to stop being asked for the damn password.
But I'm asking here because I absolutely know there is a way to disable this, I don't care if it involves hacking / opening / soldering the device, anything to stop this will be welcome, because for me is completely necessary, or else I will have to either sell the phone or disable security completely. Entering the password on startup or when your finger fails 3 times is ok and full of sense, I have no problems with that, but every 72 hours because yes is an absolute no-no, sorry.
I hope somebody knows the exact formula to [email protected] Google / Xiaomi back, because they are simply stupid.
Thanks.
P.S: Please, if you are about to say things like "it's a feature" or "I like it, it makes more secure your device so it makes sense" or "somebody could cut your finger and use it", I prefer you don't post a comment, because I'm looking for a solution not an explanation on why it is like that to understand why the things are done like they are done, I hope you understand.
How about a factory reset?
bigogofthewest said:
How about a factory reset?
Click to expand...
Click to collapse
I think this is the right decision.
Dassote said:
I think this is the right decision.
Click to expand...
Click to collapse
This is bad design from Google. When I was in the crowd (e.g. inside the train), people surrounding me were looking at my finger typing the PIN as I was not able to unlock it using my fingerprint anymore after 72 hours. It makes the phone becoming very insecure. You should lock the phone with PIN only when I am not inside the crowd (e.g. during evening hour)